14 June 19, 19:02
Quote:A relatively new botnet called Echobot has grown to 26 the number of exploits it uses to propagate. Most of the exploitation code it includes is for unpatched IoT devices, but enterprise apps Oracle WebLogic and VMware SD-Wan are among the targets, too.
Echobot is based on Mirai malware, like hundreds of other botnets that emerged once the source code became publicly available. It was first disclosed earlier this month by researchers at Palo Alto Networks, who found it contained 18 exploits at the time.
Larry Cashdollar of Akamai's Security Intelligence Response Team (SIRT) observed a new version of the Echobot botnet, which adds a host of eight new exploits to help it propagate.
"I counted 26 different exploits that were being used in the spread of this botnet. Most were well-known command execution vulnerabilities in various networked devices," says Cashdollar.
SOURCE: https://www.bleepingcomputer.com/news/se...ware-apps/